Lovensse, manufacturer of sex games games, confirmed that it has corrected a pair of security vulnerabilities that exposed the private email addresses of users and allowed the invaders to take away the account of any user.
While the company said the errors were “fully resolved”, its chief executive is now thinking of taking legal action after revelation.
In a statement She shared with TechCrunch, Lovensse CEO Dan Liu, said the sex toy manufacturer “investigated legal action” in response to alleged incorrect reports about the error. When asked by TechCrunch, the company did not respond to clarify whether it was reported by media reports or disclosure of security researchers.
Details of the error appeared this week after a security researcher who goes from the bobdahacker handle, revealed that they reported the two security errors To sex toy manufacturer earlier this year. The researcher published his findings after Lovensse claimed that it would take 14 months to fully cope with vulnerabilities rather than apply a “faster, one month” that would require users to warn users to inform their applications.
Lovensse said in his statement, which is attributed to Liu, that the corrections that have been implemented would require users to update their applications before they can be repeated using all application functions.
In the statement, Liu claimed that there is no “evidence to suggest that any user data, including email addresses or account information, have been violated or abused”. It is not clear how lovensse came to this conclusion given TechCrunch (and other stores) Verified the E -Mail Revelation Error by creating a new account and asking the researcher to identify the relevant email address.
TechCrunch asked Lovensse what technical means, such as logs, the company should find out if there was a compromise of users’ data, but a representative did not respond.
It is unheard of for organizations to resort to legal demands and threats to try to prevent the disclosure of the annoying security cases, despite the few rules or restrictions in the US that prohibit this report.
Earlier this year, an independent US journalist rejected a legal threat from the United Kingdom’s court order for accurate ransomware attack on HCRG’s private Giant of HCRG. In 2023, an employee of the county in Hillsborough County, Florida, threatened criminal charges against security investigator in accordance with state computers laws to identify and privately disclose a security defect in the court’s court file system.
